Vulnerabilities > Google > High

DATE CVE VULNERABILITY TITLE RISK
2022-08-12 CVE-2022-20308 Unspecified vulnerability in Google Android 13.0
In hostapd, there is a possible insecure configuration due to an insecure default value.
network
low complexity
google
7.5
7.5
2022-08-12 CVE-2022-20319 Externally Controlled Reference to a Resource in Another Sphere vulnerability in Google Android 13.0
In DreamServices, there is a possible way to launch arbitrary protected activities due to a confused deputy.
local
low complexity
google CWE-610
7.8
7.8
2022-08-12 CVE-2022-20325 Use After Free vulnerability in Google Android 13.0
In Media, there is a possible code execution due to a use after free.
local
low complexity
google CWE-416
7.8
7.8
2022-08-12 CVE-2022-20329 Missing Authorization vulnerability in Google Android 13.0
In Wifi, there is a possible way to enable Wifi without permissions due to a missing permission check.
local
low complexity
google CWE-862
7.8
7.8
2022-08-12 CVE-2022-20331 Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android 13.0
In the Framework, there is a possible way to enable a work profile without user consent due to a tapjacking/overlay attack.
local
low complexity
google CWE-1021
7.8
7.8
2022-08-12 CVE-2022-20362 Integer Overflow or Wraparound vulnerability in Google Android 13.0
In Bluetooth, there is a possible out of bounds write due to an integer overflow.
low complexity
google CWE-190
8.8
8.8
2022-08-12 CVE-2022-2390 Unspecified vulnerability in Google Play Services Software Development KIT
Apps developed with Google Play Services SDK incorrectly had the mutability flag set to PendingIntents that were passed to the Notification service.
local
low complexity
google
8.4
8.4
2022-08-11 CVE-2022-20180 Unspecified vulnerability in Google Android
In several functions of mali_gralloc_reference.cpp, there is a possible arbitrary code execution due to a missing bounds check.
local
low complexity
google
7.8
7.8
2022-08-11 CVE-2022-20244 Out-of-bounds Write vulnerability in Google Android 13.0.0
In Bluetooth, there is a possible out of bounds write due to a missing bounds check.
high complexity
google CWE-787
7.5
7.5
2022-08-11 CVE-2022-20246 Incorrect Default Permissions vulnerability in Google Android 13.0.0
In WindowManager, there is a possible bypass of the restrictions for starting activities from the background due to an incorrect UID/permission check.
local
low complexity
google CWE-276
7.8
7.8